MS Analysis module version 2.0 for PHP-Nuke has full path disclosure, cross site scripting, and SQL injection vulnerabilities.
c0010912fa273ff4a30d55b15d18fc5fd19b2b54ca1007ad349039d5a371a812
Multiple vulnerabilities exist in the Error Manager version 2.1 for PhpNuke 6.0. One of them allows for script injection in error logs, forcing an administrator to execute code when viewing the logs.
a4a51f7f7381f1fabc7424da2fa85a5bf60ad1a8a9b6826e3cae1904aa25c303
Both cross site scripting and SQL injection vulnerabilities exist in the 4nGuestbook version 0.92 module for PHP-Nuke versions 6.5 through 6.9.
f732ec2b913b6d095bd8180dac6ad638b87e3c15c8c333cfdacde98395e7fb6d
The 4nalbum module for PHP-Nuke versions 6.5 to 7.0 suffers from path disclosure, cross site scripting, remote file inclusion, and SQL injection vulnerabilities.
b72910a8ea7f3795a3370ca420ebdd0d9f784cdcd93d78ee2fde747165559de9
PHP-Nuke 7.1.0 is susceptibel to multiple cross site scripting attacks.
bf21be75eb9e862841810c4026922d4b2d10f41775f4e6120c0f1755aee6e9a2
Extreme Messageboard aka XMB version 1.8 Partagium Final SP2 is vulnerable to multiple SQL injection and cross site scripting attacks.
94202bebf3a32f786fd685a5f8e27fde71d3af5d8268b3550c55c6d9a2fd6d7f
PHP-Nuke versions 6.x through 7.1.0 are susceptible to SQL injection attacks.
4962278b44fd6ae11b16d0e252e35a512ae43148f98b8d43daa77867c0f0b293
A cross site scripting vulnerability exists in PHP-Nuke 7.1.0.
20ab7b5e841d9d4fb0e967215db2605948f0ef833bf39f0559bbbf06b316eec7
GBook for Php-Nuke version 1.0 fails to sanity check user input allowing for script injection and cookie theft.
fce5e2fce952d0a6c5a421f4ab449466affb0e648acbc0c10809ce06d64d243b